CVE-2021-47865

Sažetak

ProFTPD 1.3.7a contains a denial of service vulnerability that allows attackers to overwhelm the server by creating multiple simultaneous FTP connections. Attackers can repeatedly establish connections using threading to exhaust server connection limits and block legitimate user access.

Reference

http://www.proftpd.org/
https://github.com/proftpd/proftpd/issues/1298
https://www.exploit-db.com/exploits/49697
https://www.vulncheck.com/advisories/proftpd-a-remote-denial-of-service

CVSS

Base:	7.5
Impact:	3.6
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

26-01-2026 - 15:04

Objavljeno

21-01-2026 - 18:16